All articles

Release 3.10: MFA Policies And Self-Registration

3 min. read

Shelby Lee Neubeck

Shelby Lee Neubeck

14 February, 2023

Release 3.10 MFA Policy and User Self-Registration Passbolt

As always, passbolt team has been hard at work to deliver exciting new additions. Version 3.10 is packed with not just one, but two new features. Get ready to experience self-registration (available for all editions) and MFA policies (available in Pro and Cloud editions).

Let’s get down to business.

Introducing Self-Registration

Admins, rejoice! Now that you can set up self-registration policies for your teams, you don’t have to waste time and energy sending invitations to every new user. Now you can let them do all the work — all you have to do is create a domain safelist. Less time spent on invitations means more time to do the things you love. Take a breather, relax a bit.

User self-registration page passbolt

As a user, you’ll never have to wait around for an invitation to passbolt (dare we say, the golden ticket). Self-registration allows you to sign up on your own, provided that your email domain complies with the admin’s policy. You simply enter your information in the form fields and submit. This makes the registration process more efficient and smoother, especially for larger teams. No more begging for an invite to get started with passbolt.

Admin workspace for User Self-Registration with Passbolt

Setting Up Self-Registration

Admins can now set up self-registration from their dashboard. By simply heading to the admin workspace, finding the self-registration settings in the sidebar, toggling it on and specifying the email domain(s) that will be allowed to register themselves. Using self-registrations is not recommended if your company doesn’t use domain-based emails. If you use generic email domains like or, a warning will appear but the add button is still functional.

Errors on self-registration page

You can add as many domains as you’d like to the domain safelist. Once you’re finished adding domains, all you have to do is save. Then sit back, relax, and watch the registrations roll in.

Introducing MFA Policies

Being in control of your security is incredibly important, and knowing that your users are doing everything they can to protect your company data is a big part of that. With MFA policies, administrators can enforce a company-wide policy that requires MFA for all users. This provides an added layer of protection to your company’s passbolt and gives you peace of mind knowing that you and your team’s data is well protected.

MFA Policy Admin workspace passbolt

Note that MFA policy settings are currently available only for passbolt paid editions: Pro and Cloud.

Managing MFA Policies

If this all sounds great and you’re ready to set it up, it’s a breeze. As an administrator, you can manage MFA policies for your organisation directly from the admin workspace. You can enforce mandatory MFA, prompting users who haven’t enabled it to do so. Another setting you may notice at the bottom of the MFA policy settings is the ability to toggle the “remember this device for a month” option. If this is unchecked, MFA will be enforced every time a user logs in. Of course, there’s always the option to let each user decide if they want to use MFA. The choice is yours!

MFA policies are easy to set up and add even more security to your passbolt accounts.

That was easy gif

Go Forth, Self-Register, and Enforce MFA

And there you have it! Two new passbolt features for exploring. Get started exploring then drop us a line with your suggestions and feedback.

It’s terrific to be able to offer these new features. As always, passbolt is committed to improvement and bringing you new and exciting features. Thanks to the incredible community and contributors for making Passbolt better than ever.